2001-0056 



AU2151 



Examiner: Nghi Tran 



In the Claims : 

This listing of claims will replace all prior versions and listings of claims 
in the application: 
Listing of Claims : 

1-21. (Previously Withdrawn.) 

22. (Previously Amended) A method practiced at a network interface 
unit (NIU) directly connected to at least one local area network (LAN), said NIU also 
being connected to a non-secure node of a second network, which second network is in 
packet communication with at least one access node of a secure virtual private network 
(VPN), the method comprising 

receiving data packets from at least one device on said at least one LAN, 
multiplexing said data packets into at least one packet data stream, 
modifying said at least one packet data stream in a security server in said NIU in 
accordance with a secure communications protocol by encrypting packets in said at least 
one packet data stream and encapsulating resulting encrypted packets, and 

providing network destination address information from a Domain Name System 
(DNS) server for at least selected ones of said at least one packet data stream . 

23. (Previously amended.) The method of claim 22 wherein said modifying 
said at least one packet data stream in a security server comprises modifying said at least 
one packet data stream in an Internet Protocol security (IPsec) server. 

24. (Previously amended.) The method of claim 23 further comprising 
receiving at least one stream of data packets from said non-secure network, 
filtering out packets in said at least one stream of received data_packets that are 

not from said VPN network, said filtering being performed by a firewall in said security 
server, said filtering producing at least one filtered stream of received data packets, 

modifying said packets in said at least one filtered stream of received data packets 
by decrypting said packets in said at least one filtered stream of received data packets and 
decapsulating resulting decrypted packets to produce decapsulated decrypted packets, 
said decrypting and decapsulating being performed by said security server, 
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demultiplexing at least one stream of decapsulated decrypted received data 
packets to form at least one demultiplexed stream of said received data packets for 
delivery to said at least one LAN. 

25 . (Original) The method of claim 24 further comprising 
authenticating client devices on said at least one LAN, and 

wherein packets from authenticated client devices on said at least one LAN that 
are received at said network interface device are processed as packets received from said 
VPN. 

26. (Previously Added) The method of claim 22 wherein said non-secure 
node of a second network is part of said NIU. 

27. (Previously Added) The method of claim 26 wherein said at least 
selected ones of said at least one packet data stream are applied to said non-secure node 
of said second network. 
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